Our vision, investor information and leadership team profiles
Wejo, the connected car data pioneer, announces that it has been awarded the internationally recognised ISO 27001 certification for its Information Security Management System. The information security standard is published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). The standard details requirements for establishing, implementing, maintaining and continually improving an information security management system. The standard governs the security of information assets such as intellectual property, financial information, employee information, as well as information entrusted by third parties.
ISO 27001: 2013 is a global benchmark and for Wejo it demonstrates to its current and prospective partners and customers that it has high quality assurance systems, processes and controls in place to manage risk, and that they are operating effectively.
Wejo’s certification was issued by A-lign, an independent and accredited certification body based in the United States, on successful completion of a formal audit process.
Wejo’s current security certifications, Cyber Essentials and IASME, are recognised in the UK and Europe but are not as well recognised in other international markets. ISO 27001 is an instantly recognised global standard and this award acts as a stepping stone to TISAX (Trusted Information Security Assessment Exchange), the common assessment and exchange mechanism in the global automotive industry which is often required by OEMs who operate centralised due diligence processes.
Wejo has adopted a shared responsibility model in respect to its cyber security compliance. It partners with Amazon Web Services and Microsoft Assure on Cloud functionality. These partners are responsible for assuring the security of their Cloud services, and Wejo is responsible for assuring the security of it’s technology platforms that operate within their Clouds. For Wejo this demonstrates to external parties that there is no break in certification standards throughout its entire technology stack and that its systems, processes and compliance are robust and world-leading.
Richard Barlow, CEO and Founder of Wejo, said: “Security and risk management has been at the heart of everything we have done at Wejo over the last six years. We are focused on providing partners and customers with best in class risk mitigation so they can rest assured that we meet global industry standards to keep all our and their information safe and secure.”
Wejo is experiencing increasing demand and recognition of the value that its connected car data products and insights provide, unlocking value for public and private sector organisations. The data and insights provided by the 10.3 million cars on its platform are licensed to mobility businesses from traffic analysts to parking app developers, smart city planners to governments.
Wejo is creating the largest single source of connected car data, focused on innovation and making it simple and secure for organisations to access and benefit from connected car data. Building on its existing partnerships with some of the largest auto manufacturers in the world, Wejo is in live discussions with various auto manufacturers about future opportunities, working with its partners to take the complexity out of data processing, storage and sharing.
About ISO accreditation
ISO (International Organization for Standardization) is the world’s largest developer and publisher of International Standards. ISO is a network of national standards bodies of 165 countries, with a Central Secretariat in Geneva, Switzerland.
ISO standards are voluntary and it does not regulate or legislate, although countries may decide to adopt its standards as regulations or refer to them in legislation. ISO has more than 23,429 standards in its portfolio. Its programme ranges from standards for traditional activities, such as agriculture and construction, through mechanical engineering, manufacturing and distribution, to transport, medical devices, the environment, safety, information and communication technologies and to standards for good practice and for services. https://www.iso.org/home.html